Closed JasonAlt closed 4 years ago
There's a fix in branch issues/58 that needs verifying. Follow these instructions:
git clone https://github.com/xsede/oauth-ssh.git
cd oauth-ssh/
git checkout issue/58
sudo python ./server/src/config/oauth_ssh_config/oauth_ssh_config.py register <insert_fqdn>
That seems to have taken care of it:
[root@www oauth-ssh]# python ./server/src/config/oauth_ssh_config/oauth_ssh_config.py register www.tscwork.net Success
Going to continue with the next steps of the documentation and 'Configure SSHD to use PAM' & 'Configure PAM to use Oauth SSH'.
Just one comment I would like to make is the use of FQDN isn't always the best when just trying to test/evaluate and it would be much simpler if an external IP could be used.
The fix should have displayed the error that was crashing the config program. So it looks like whatever issue you had was transient. Still, the change is good so I'll merge it.
I agree that FQDN registration is simple. But the authorization model would not allow scopes based on ip address. Perhaps we could do it based on the SSH service client UUID, but only as a testing or temporary thing because it is not very user friendly either.
Offending line oauth_ssh_config.py line 90